Tag: research data management

DMPonline.be: how do I write a Data Management Plan?

What is a DMP? A Data Management Plan (DMP) is a formal document that specifies how research data will be handled both during and after a research project. It identifies key actions and strategies to ensure that research data are of a high quality, safe, sustainable and – where possible ...    Read more

GDPR: how am I transparent to data subjects in my research?

Informing the persons whose personal data are being processed (the data subjects) is one of the basic principles of the General Data Protection Regulation (GDPR) ('transparency'). As a researcher, it is your job to communicate this information to data subjects in a concise, transparent, comprehensible and easily ...    Read more

GDPR: how can I ensure that the processing of personal data is lawful?

The processing of personal data is only lawful if one of the conditions or legal grounds of the General Data Protection Regulation (GDPR) is met. It is very important to indicate the applicable legal basis for the processing at the start of your research. The processing of personal data in ...    Read more

GDPR: how do I register personal data processing activities?

Introduction The General Data Protection Regulation (GDPR, known as AVG in Dutch) requires that all activities concerning the processing of personal data at UGent are documented and registered in a 'register of processing activities', the GDPR Register. This internal registration replaces the former 'obligation to report' with the ...    Read more

GDPR: how long can research data containing personal data be stored?

The General Data Protection Regulation (GDPR) requires that personal data cannot be kept longer than necessary to achieve the purposes for which they are processed (see the ‘storage limitation’ principle). The RDM Policy framework of Ghent University requires that research data be kept for a minimum of 5 ...    Read more

GDPR: what are personal data?

Personal data Personal data are any information about an identified or identifiable natural person. A natural person is considered to be identifiable if he or she can be identified directly or indirectly. some examples of 'normal' personal data include: name, address, e-mail address, photo, ID number, IP address, employee ...    Read more

GDPR: what are the basic principles?

The General Data Protection Regulation (GDPR) is based on six basic principles that you must take into account when processing personal data. Basic principles 1. Lawfulness, fairness and transparency You are obliged to process personal data in a transparent manner with respect for all applicable laws, regulations and rules. ...    Read more

GDPR: what are the different roles and responsibilities according to the GDPR?

Various roles are defined within the General Data Protection Regulation (GDPR) for the processing personal data. The most important roles are:  controller joint controller  processor Since controllers and processors have different responsibilities and obligations, it is important that you clearly define these roles (together with the other partners in ...    Read more

GDPR: what has changed with regard to the previous privacy legislation?

Although the main components of the previous privacy legislation are largely retained, the General Data Protection Regulation (GDPR) also introduces a number of important changes. 1. Accountability The former 'obligation to report' to the privacy commission was replaced with 'accountability' whereby you as the researcher must document the processing of ...    Read more

GDPR: what information should I include in an informed consent form when the processing of personal data is based on the consent of the data subjects?

To be lawful, the processing of personal data must be based on one of the legal grounds provided in the General Data Protection Regulation (GDPR). If the processing of personal data within your research project is based on the consent of the data subject as the legal basis, ...    Read more

GDPR: what is the General Data Protection Regulation?

When you process personal data for your research, you must follow the rules of the General Data Protection Regulation (GDPR). The GDPR: new European privacy legislation The GDPR, which has been in force since 25 May 2018, modernises the existing privacy legislation. It creates a uniform European legislative framework ...    Read more

GDPR: what rights do data subjects have, how do I respect them and what exceptions may apply to research?

The General Data Protection Regulation (GDPR) defines the persons whose personal data are processed as data subjects. As a researcher, you have to take into account that the data subjects can in accordance with the GDPR exercise different rights with regard to their personal data. 1. Right to information ...    Read more

GDPR: what should I do in the event of further/secondary processing of personal data?

Primary vs. secondary processing In the case of further or secondary processing of personal data in a research project, the personal data will not be directly collected from the data subjects by you. If you do collect the personal data directly from the data subjects as part of your research ...    Read more

GDPR: what should I keep in mind when designing my research?

Privacy by design In the design phase of a research project, you normally think about the substance and methodological aspects of your research. In view of the General Data Protection Regulation (GDPR) it is important to also thoroughly consider and describe the collection and processing of personal data during the ...    Read more

GDPR: when does it apply to my research?

The General Data Protection Regulation (GDPR) applies when you (or your institution or organisation) process personal data in the framework of scientific research (e.g. collection, recording, classification, structuring, storage, adaptation or alteration, retrieval, consultation, use, etc.), regardless of the origin of the personal data when you (or your institution or ...    Read more

GDPR: who are considered as vulnerable persons?

Sometimes mention is made of vulnerable natural persons in the context of the General Data Protection Regulation (GDPR). Examples babies and young children pregnant women the elderly people with mental disorders asylum seekers people with disabilities ethnic minorities the sick and patients These are often persons who are legally ...    Read more

GDPR: why is it important to comply with this legislation?

Protecting the rights and freedoms of data subjects If you process personal data, your job is to protect the rights and freedoms of data subjects in accordance with the General Data Protection Regulation (GDPR). For this you must evaluate the possible risks associated with the processing of personal data ...    Read more